General

  • Target

    2200-4-0x0000000000380000-0x0000000000397000-memory.dmp

  • Size

    92KB

  • MD5

    e30048017d2f04ced70af241ae1bfb1e

  • SHA1

    03924cc6acb8ad00f546925d0d0ef9b1940c7b4f

  • SHA256

    02ae4c9815530398f7baabeea8e416523b4fe654dd6107209e493b9d9b792b86

  • SHA512

    a22521711a95609b00250f1717a28b5d9617ff09515dc3dd9f4c47b5e594412b4dd28b60aeedb3693b6335a7aad0a94aa2a7bc4ff95dd992f51c222ccab19ca2

  • SSDEEP

    1536:5JJJJJJJJJJJJ5ueNf7towSEKNn1Ueuqpn6pMqqU+2bbbAV2/S2TrKyGBU+:dZ7tJvKzUS2MqqDL2/TrK

Score
10/10

Malware Config

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 2200-4-0x0000000000380000-0x0000000000397000-memory.dmp
    .dll windows:5 windows x86 arch:x86


    Headers

    Sections